certmanager

package
v0.16.0 Latest Latest
Warning

This package is not in the latest version of its module.

Go to latest
Published: Nov 18, 2023 License: Apache-2.0 Imports: 11 Imported by: 0

Documentation

Index

Constants

View Source
const (
	// InternodeCertificate is the name of the certificate used for internode communications.
	InternodeCertificate = "internode-certificate"
	// FrontendCertificate is the name of the certificate used by the frontend.
	FrontendCertificate = "frontend-certificate"
	// InternodeIntermediateCACertificate is the name of the intermediate CA certificate used to issue
	// internode certificates.
	InternodeIntermediateCACertificate = "internode-intermediate-ca-certificate"
	// FrontendIntermediateCACertificate is the name of the intermediate CA certificate used to issue
	// frontend certificates.
	FrontendIntermediateCACertificate = "frontend-intermediate-ca-certificate"
)
View Source
const (
	TLSCA   = "ca.crt"
	TLSCert = "tls.crt"
	TLSKey  = "tls.key"
)

Variables

View Source
var (
	// WorkerFrontendClientCertificate is the name of the client certificate
	// used for by the worker for authenticating against the frontend.
	WorkerFrontendClientCertificate = GetCertificateSecretName("worker")
	// AdmintoolsFrontendClientCertificate is the name of the client certificate
	// used for by admin tools for authenticating against the frontend.
	AdmintoolsFrontendClientCertificate = GetCertificateSecretName("admintools")
	// UIFrontendClientCertificate is the name of the client certificate
	// used for by UI for authenticating against the frontend.
	UIFrontendClientCertificate = GetCertificateSecretName("ui")
)

Functions

func GetCertificateSecretName

func GetCertificateSecretName(clientName string) string

GetCertificateSecretName returns generated secret name for a given client name.

func GetTLSEnvironmentVariables

func GetTLSEnvironmentVariables(instance *v1beta1.TemporalCluster, envPrefix, certsMountPath string) []corev1.EnvVar

GetTLSEnvironmentVariables returns needed env vars for enabling TLS connection for temporal tools. To support the whole range of temporal tools, the caller should provide an envPrefix which prefixes all TLS env vars.

Types

type GenericCAIssuerBuilder

type GenericCAIssuerBuilder struct {
	// contains filtered or unexported fields
}

func (*GenericCAIssuerBuilder) Build

func (*GenericCAIssuerBuilder) Update

func (b *GenericCAIssuerBuilder) Update(object client.Object) error

type GenericFrontendClientCertificateBuilder

type GenericFrontendClientCertificateBuilder struct {
	// contains filtered or unexported fields
}

func NewGenericFrontendClientCertificateBuilder

func NewGenericFrontendClientCertificateBuilder(instance *v1beta1.TemporalCluster, scheme *runtime.Scheme, clientName string) *GenericFrontendClientCertificateBuilder

func (*GenericFrontendClientCertificateBuilder) Build

func (*GenericFrontendClientCertificateBuilder) Update

type GenericItermediateCACertificateBuilder

type GenericItermediateCACertificateBuilder struct {
	// contains filtered or unexported fields
}

func (*GenericItermediateCACertificateBuilder) Build

func (*GenericItermediateCACertificateBuilder) Update

type MTLSBootstrapIssuerBuilder

type MTLSBootstrapIssuerBuilder struct {
	// contains filtered or unexported fields
}

func NewMTLSBootstrapIssuerBuilder

func NewMTLSBootstrapIssuerBuilder(instance *v1beta1.TemporalCluster, scheme *runtime.Scheme) *MTLSBootstrapIssuerBuilder

func (*MTLSBootstrapIssuerBuilder) Build

func (*MTLSBootstrapIssuerBuilder) Enabled

func (b *MTLSBootstrapIssuerBuilder) Enabled() bool

func (*MTLSBootstrapIssuerBuilder) Update

func (b *MTLSBootstrapIssuerBuilder) Update(object client.Object) error

type MTLSFrontendCertificateBuilder

type MTLSFrontendCertificateBuilder struct {
	// contains filtered or unexported fields
}

func NewMTLSFrontendCertificateBuilder

func NewMTLSFrontendCertificateBuilder(instance *v1beta1.TemporalCluster, scheme *runtime.Scheme) *MTLSFrontendCertificateBuilder

func (*MTLSFrontendCertificateBuilder) Build

func (*MTLSFrontendCertificateBuilder) Enabled

func (b *MTLSFrontendCertificateBuilder) Enabled() bool

func (*MTLSFrontendCertificateBuilder) Update

type MTLSFrontendIntermediateCAIssuerBuilder

type MTLSFrontendIntermediateCAIssuerBuilder struct {
	GenericCAIssuerBuilder
}

func NewMTLSFrontendIntermediateCAIssuerBuilder

func NewMTLSFrontendIntermediateCAIssuerBuilder(instance *v1beta1.TemporalCluster, scheme *runtime.Scheme) *MTLSFrontendIntermediateCAIssuerBuilder

func (*MTLSFrontendIntermediateCAIssuerBuilder) Enabled

type MTLSFrontendItermediateCACertificateBuilder

type MTLSFrontendItermediateCACertificateBuilder struct {
	GenericItermediateCACertificateBuilder
}

func NewMTLSFrontendIntermediateCACertificateBuilder

func NewMTLSFrontendIntermediateCACertificateBuilder(instance *v1beta1.TemporalCluster, scheme *runtime.Scheme) *MTLSFrontendItermediateCACertificateBuilder

func (*MTLSFrontendItermediateCACertificateBuilder) Enabled

type MTLSInternodeCertificateBuilder

type MTLSInternodeCertificateBuilder struct {
	// contains filtered or unexported fields
}

func NewMTLSInternodeCertificateBuilder

func NewMTLSInternodeCertificateBuilder(instance *v1beta1.TemporalCluster, scheme *runtime.Scheme) *MTLSInternodeCertificateBuilder

func (*MTLSInternodeCertificateBuilder) Build

func (*MTLSInternodeCertificateBuilder) Enabled

func (*MTLSInternodeCertificateBuilder) Update

type MTLSInternodeIntermediateCAIssuerBuilder

type MTLSInternodeIntermediateCAIssuerBuilder struct {
	GenericCAIssuerBuilder
}

func NewMTLSInternodeIntermediateCAIssuerBuilder

func NewMTLSInternodeIntermediateCAIssuerBuilder(instance *v1beta1.TemporalCluster, scheme *runtime.Scheme) *MTLSInternodeIntermediateCAIssuerBuilder

func (*MTLSInternodeIntermediateCAIssuerBuilder) Enabled

type MTLSInternodeItermediateCACertificateBuilder

type MTLSInternodeItermediateCACertificateBuilder struct {
	GenericItermediateCACertificateBuilder
}

func NewMTLSInternodeIntermediateCACertificateBuilder

func NewMTLSInternodeIntermediateCACertificateBuilder(instance *v1beta1.TemporalCluster, scheme *runtime.Scheme) *MTLSInternodeItermediateCACertificateBuilder

func (*MTLSInternodeItermediateCACertificateBuilder) Enabled

type MTLSRootCACertificateBuilder

type MTLSRootCACertificateBuilder struct {
	// contains filtered or unexported fields
}

func NewMTLSRootCACertificateBuilder

func NewMTLSRootCACertificateBuilder(instance *v1beta1.TemporalCluster, scheme *runtime.Scheme) *MTLSRootCACertificateBuilder

func (*MTLSRootCACertificateBuilder) Build

func (*MTLSRootCACertificateBuilder) Enabled

func (b *MTLSRootCACertificateBuilder) Enabled() bool

func (*MTLSRootCACertificateBuilder) Update

func (b *MTLSRootCACertificateBuilder) Update(object client.Object) error

type MTLSRootCAIssuerBuilder

type MTLSRootCAIssuerBuilder struct {
	GenericCAIssuerBuilder
}

func NewMTLSRootCAIssuerBuilder

func NewMTLSRootCAIssuerBuilder(instance *v1beta1.TemporalCluster, scheme *runtime.Scheme) *MTLSRootCAIssuerBuilder

func (*MTLSRootCAIssuerBuilder) Enabled

func (b *MTLSRootCAIssuerBuilder) Enabled() bool

type WorkerFrontendClientCertificateBuilder

type WorkerFrontendClientCertificateBuilder struct {
	*GenericFrontendClientCertificateBuilder
}

func NewWorkerFrontendClientCertificateBuilder

func NewWorkerFrontendClientCertificateBuilder(instance *v1beta1.TemporalCluster, scheme *runtime.Scheme) *WorkerFrontendClientCertificateBuilder

func (*WorkerFrontendClientCertificateBuilder) Enabled

Jump to

Keyboard shortcuts

? : This menu
/ : Search site
f or F : Jump to
y or Y : Canonical URL